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o: 

"^ ■ Richard G. Swan proved in 1962 that trinomials x^'^ + x'" + 1 G F2[x] with 8k > m 

C^^ . have an even number of irreducible factors, and so cannot be irreducible. In fact, he 

found the parity of the number of irreducible factors for any square-free trinomial in 

F2[x]. We prove a result that is similar in spirit. Namely, suppose n is odd and /(x) = 

x" + Y^i^s x' + 1 e F2[x], where S C {i : i odd, < i < n/3} U {i : i = n (mod 4), < 

i < n}. We show that if n = ±1 (mod 8) then / has an odd number of irreducible 

r^ ' factors, and if n = ±3 (mod 8) then / has an even number of irreducible factors. This 

Cd ■ has an application to the problem of finding polynomial bases {1, a, . . . , a"~^} of F2n 

such that Tr(Q*) = for all 1 < i < n. 

CN ' 1. Introduction 

> : 

00 . For purposes of implementing field arithmetic in ¥2" efficiently, it is desirable to have an 

J^ I irreducible polynomial f{x) E F2[x] of degree n with as few terms as possible. The number 

\Q • of terms must be odd, as otherwise x + l would be a factor. Often a trinomial x^ + x"^-!-! can 

O . be found, or at least a pentanomial, x^ + x™"^ -t-x*"^ +x"^^ + 1, where n > mi > 11x2 > m^ > 0. 

(^ . If a is a root of /, then {1, a, a^, . . . , a""^} is a basis for F2n/F2, called a polynomial basis. 

Multiplication with respect to this basis is more efficient when the number of terms in / is 
small. In addition, multiplication will be more efficient if / has the form x" + g{x), where 
^ ■ deg{g) is small. For a trinomial, we would like m to be small, and for a pentanomial, we 

would like mi to be small. 

It is also desirable to be able to compute the trace quickly. Now Tr(^aja*) = ^jg/Oi, 
where I = {i : Tr(a*) = 1}. Thus, trace is especially easy to compute if J has a single element. 
p^ ', Ahmadi and Menezes PJ showed that if n is odd, then |/| = 1 if and only if /(x) + 1 contains 

only monomials of odd degree. They computed irreducible trinomials and pentanomials with 
this property (m odd for a trinomial, and mim,2m,^ odd for a pentanomial.) To their surprise, 
mi seemed to be always small when n = ±1 (mod 8), but m,i > n/3 when n = ±3 (mod 8). 
This article explains their observation: we prove that if n = ±3 (mod 8) and mi < n/3, 
then x" + x'"^ + x™"^ + x™^ + 1 has an even number of irreducible factors, and so it cannot 
be irreducible. More generally, we prove: 

Theorem. Let n be odd and /(x) = x" + Xligs^* + 1 G F2[x], where 

S C {i : i odd,0 <i <n/3}U {i :i = n (mod 4), < i < n}. (1) 



Then f has no repeated roots. If n = ±1 (mod 8) then f has an odd number of irreducible 
factors. If n = ±3 (mod 8) then f has an even number of irreducible factors. 

The bound n/3 is sharp, as shown by the example x^^ + x^ + 1, which is irreducible. 

Corollary 1.1 Let n = ±3 (mod 8) and let f G F2[x] be an irreducible polynomial of de- 
gree n such that Tr(a*) = for each 1 < i < n. Then f{x) contains a term x^ with 
n > k > n/3. 

Proof. Ahmadi and Menezes [T] showed that all the terms occurring in / + 1 have odd 
exponent. Let / = x" + x^+ lower degree terms. By the theorem, / will have an even 
number of irreducible factors unless k > n/3. I 

Our theorem is closely related to work of Fredricksen, Hales, and Sweet |2]. The first 
theorem in their paper, when specialized to g{x) = 1 + Yli oM^i^^i yields a weak form of 
this theorem, namely that for n odd and n > 5deg{g), the parity of the number of factors 
of x"- + g{x) is a periodic function of n, with period 8. 



2. Resultants and discriminants 

This section gives background on resultants which will be needed for the proof of the 
theorem. An excellent reference is Sections 5.8 and 5.9]. 

Let / = X^iLo*^*^""* ^"^^ 9 ~ 'YlT=o^i^^~^ ^^ polynomials in K[x], where K is a, field 
and ao^o 7^ 0- The resultant of / and g, denoted R{f,g), is the determinant of the matrix 
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CLq OjI 0,2 ... fflr 
hi 62 • • • hyn 

bo hi 62 • • • hm 

ho hi ... hm) 



(2) 



Here there are m rows containing coefficients of / and n rows containing coefficients of g, 
and the principal diagonal contributes a™6J^ to the determinant. Now f,g can be factored 
completely into linear factors over the algebraic closure: 



As shown in [S], 



9{x) 
R{f,9 



ao{x - xi){x - X2) ■ ■ ■ {x - Xn) 
bo{.x - yi){x - 1/2) ■ ■ ■ (a; - Vm)- 



n«( 



j=i 



-1^ 






The resultant respects the following properties. 
(Rl) lig = fq + r,R{f,g) = R{f,r). 



(R2) R{x,g)=g{0),R{f,-x) = f{0). 

(R3) R{hh, g) = i?(/i, g)RU2. g), R{f, gm) = R{f, gi)R{f, ^2). 

Note that R{f,g) = if and only if / vanishes at a root of g in K; equivalently, if and 
only if GCD(/, g) has degree > 1. Also, if the coefficients of /, g belong to a subring A G K, 
then R{f,g) G A. We will apply this to the case Z C Q; thus R{f,g) G Z is defined for 
f,g G Z[x]. It will be handy to note that if ao = 1 then we can pad g{x) with leading zeros 
(thereby increasing m and allowing Bq = 0) without affecting the determinant of the above 
matrix. 

If / = (x — xi) ■ ■ ■ {x — Xn) then 

i<k 



Rif, n 


i 




The discriminant of / 


is defined 


as 




disc(/) = 


||(Xi-Xj 



i<j 

Swan |31 Corollary 3] proved the following: 

Stickelberger-Swan Theorem. Let f G F2[x], and suppose disc(/) 7^ (equivalently, f 
has no repeated roots). Let t denote the number of irreducible factors of f{x) over ¥2[x]. 
Let F{x) G Z[x] be any monic lift to the integers. Then t = deg(/) (mod 2) if and only if 
disc{F) = 1 (mods). 

Swan used this result to characterize the square- free trinomials in F2 [x] which have an odd 
number of irreducible factors. A characterization for tetranomials in F2 [x] was recently ob- 
tained by Hales and Newhart jH] • Another very interesting generalization of Swan's Theorem 
is given by Fredricksen, Hales, and Sweet J2]. 

3. Proof of the theorem 

Let F be the lift of / to Z which has all its coefficients equal to or 1, that is, 

F(a;) =a;" + ^x* + l gZ[x]. (3) 

ies 

We will show disc(F) = 1 (mod 8) if n = ±1 (mod 8) and disc(-F) = 5 (mod 8) if ra = ±3 
(mod 8). Since disc(/) = disc(F) (mod 2), this will imply / has nonzero discriminant, 
hence distinct roots. Further, the Stickelberger-Swan Theorem will imply that / has an odd 
number of irreducible factors if and only if n = ±1 (mod 8). 

We compute disc(F) using the properties of discriminants and resultants given in Sec- 
tion |21 We have 

disc(F) = (-l)"("-i)/2i?(F,F'). 

Since R{F, -x) = F(0) = 1, we have R{F, F') = R{F, -xF') = R{F, -xF' + uF), and so 
ri"disc(F) = (-l)"("-i)/2^(F, G), where G = n{nF - xF'). 



Now 



where 



G = "^n{n- i)x' + n^ = AG^ix) + 2G2{x) + 1 (mod 8), 



ies 



G^ix) = Yl 

i£S, n-i=2 { mod 4) 

G,{x) = Yl 

i£S, n-j=4( mod 8) 



n{n — i) 
2 

n{n — i) 
4 



X 



X . 



Note that deg(G'2) < ri/3 and deg(G'4) < n by (P). We will prove that 

R{F,G) = l (mods). 

This will imply n"disc(F) = (— l)"-("^i)/2 (mod 8). Since n^ = 1 (mod 8) we conclude 
disc(F) = n(— 1)"*-"'"^''/^ (mod 8), and this equals 1 if n = ±1 (mod 8), or 5 if n = ±3 
(mod 8), as required. 

It remains to prove R{F,G) = 1 (mod 8). Since we are allowed to pad G with leading 
zeros (as explained in Section^)), we may assume deg{G) = n—A. Now set up the correspond- 
ing matrix for the resultant. Lemma 14.41 below implies that this matrix has determinant 1 
(mod 8). This completes the proof of the theorem. 

Unfortunately, Lemma 14.41 is technical and unenlightening. For this reason, we include 
two simpler lemmas which imply special cases of the theorem. Namely, Eq (0)) of Lemma ^21 
(with Fq = Fi = 0) implies our result when S <Z {i odd : < i < n/3 }, and Eq (0) handles 
the case when S G {i : i = n (mod 4),i < n/2 }. Lemma (4.31 implies R{F, G) = 1 (mod 8) 
when S G {i : i = n (mod 4), < i < n }. 

4. Some lemmas 

In this section we provide the lemmas which were promised at the end of the preceding 
section. Lemmas 14 . 21 and 14 . 31 can be used to show R{F, G) = 1 (mod 8) in special cases, and 
Lemma [4.41 handles the general case. 

Lemma 4.1 Let D be a square matrix with entries in Z/8Z such that Dij is even and 
DijDji = whenever i j^ j ■ Then det{D) = Yl Flu. 

Proof. Consider the expansion of det(D). The principal diagonal contributes Y\a=i ^a- ^^ 
claim all other terms are mod 8. Indeed, a nonprincipal summand contains some Dij with 
i ^ j. If it also contains Dji then the summand is (mod 8). If not then the summand 
contains some Dji from the jth row and Dki from the ith column, where i, j, k and i, j, £ are 
distinct; but in that case the summand is again (mod 8) since it contains the product of 
at least three off-diagonal entries. I 

Lemma 4.2 Let H E Z[x], x\H , and deg{H) = s. Let n > 1 and Fq, Fi, F2 G Z[x] such 
that deg(Ffc) < n — ks, k = 0,1, 2. Then 

i?(x" + 4Fo(x) + 2Fi(x) + F2(x),2i7 + l) = 1 (mod 8) (4) 



i?(a:" + 2Fo(x)+Fi(x), 4/7 + 1) 



fmod 



(5) 



Proof. First we prove ©. The resultant i?(a;" + 4Fo(x) + 2Fi{x) + F2{x),2H{x) + 1) is 

the determinant of an {n + s) x [n + s) matrix of a special shape; we will take advantage of 

this to show that its determinant is 1 (mod 8). For example, in the case s = 3, n = 12 the 

matrix looks like: 

/I 444222******0 0\ 

01444222******0 

001444222****** 

222100000000000 

022210000000000 

002221000000000 

000222100000000 

\0 0000000000222 1/ 

where I denotes an integer which is 1 (mod 8), * denotes any integer, 2 denotes any even 
integer, 4 denotes any integer which is divisible by 4, and denotes any integer which is 
divisible by 8. There are s 4's, s 2's, and (n — 2s) *'s in each of the first s rows. Let M 
denote this matrix, and M its image in Z/8Z. Since det(M) = det(M) (mod 8), it suffices 
to consider the entries as belonging to Z/8Z. 

Use the I's in the ffist s rows as pivots to clear the even numbers in the columns below 
them to obtain a matrix of the form: 

/I 444222******0 0\ 
01444222******0 
001444222****** 
000144422222222 
000214442222222 
000221444222222 
000222100000000 
000022210000000 
000022 2 1000000 

VO 0000000000222 1/ 



This matrix has the form M = {q jj), where A is upper-triangular with I's on the diagonal 
and D has I's on the diagonal and satisfies the conditions of Lemma f4. II Hence, det(M) = 
det{A) detiD) = 1. 



The equation ^ is proved similarly, except that one begins with a matrix of the form 



/T 222*********0 n\ 
01222*********0 
00T222********* 
444100000000000 
044410000000000 
004441000000000 
000444100000000 

000000000044410 
yo 0000000000444 1/ 



If F = x" + Ei 



es 



X 



1 with S G {i odd : < i < n/3 } then we can apply Eq. 



to show R{F,G) = 1 (mod 8), taking Fq = Fi = 0, Fa = E.G^a;* + 1, H = G2 + 2G4. If 
S C {i -.i = n(mod 4), < i < n/2 } then we apply Eq. © with Fq = 0, Fi = Xlies^* + 1' 
H = G4. For the case S G {i : i = ^(mod 4),0 < i < n} one verifies that the matrix M 
which computes R{F, G), when reduced mod 8, satisfies the conditions of Lemma [4.31 below, 
and so R{F, G) = det(M) = 1 (mod 8). For the general case of S* as in ((T)), we require the 
more complicated Lemma f4. 41 in order to show R{F,G) = 1 (mod 8). 

Lemma 4.3 Let < m < n and let M be an {m + n) x [m + n) matrix with entries in Z/8Z 
of the form: 

'A B^ 
G 




D 



where A = {oij), G 



-^vj 



are m x m matrices, B 



it) is m X n, D = {dki) is n x n. 



Assume the following conditions hold: 



1. The principal diagonal entries of M are all equal to 1 (i.e., a^ 
and 1 < k < n). 



I'kk 



1 for 1 < i < m 



2. A is upper-triangular, and aij is even when i + j is odd. 

3. G is upper-triangular, all entries of G are divisible by 4, o-nd Cij = when i-\-j is odd. 

4. dk£ = (mod 4) when k ^ L 

5. bir is even when r < i and i + r is even. 

Thendet{M) = 1 (mod 8). 

Proof. Since A is upper-triangular with I's on its principal diagonal, the top m rows of M 
may be used as pivots. Because of the conditions on G, a row operation will consist of adding 
four times the i-th. row of {A B) onto the rth row of ( ^ Z)), where r <i and r = i (mod 2). 
After each pivot operation, the conditions on G will remain true: the entries of G will still be 



divisible by 4, and Crs will still be when r + s is odd because a^s is even when i + s is odd. 
The conditions on D will also remain true: drr will still be one because bir is even. After 
completing the pivot operations, C will be reduced to 0. Thus, det(M) = det{A) det{D) . 
Clearly det{A) = 1, and det{D) = 1 by Lemma Wl\ I 

The next lemma implies R{F, G) = 1 in the general case where S* is as in (Q). Here F, G 
have the form 



4|fc fc = 2{ mod 4) 

0<fc<n (2n/S)<k<n 

G{x) = 4 5^ 6fcx"-'= + 2 Yl ^-^^""^ + 1 



4|fc fe=2 ( mod 4) 

0<k<n (2n/3)<k<n 

where ak,bk € Z. We consider G to have degree m = n — 4 (possibly with leading zeroes) 
and set up the matrix M which computes the resultant R{F, G). This matrix, when reduced 
mod 8, satisfies the conditions of the next lemma, so R{F,G) = det(M) = 1 (mod 8). The 
proof of Lemma 14.41 is similar to that of Lemma 14.31 but the details are much messier. 

Lemma 4.4 Let n > 5 be odd, m = n — 4, and M = (y) be a square matrix over Z/8Z, 
where X is m x [m + n) and Y is n x [m + n). Let s = \_{n — l)/3j . Assume 

(HI) Ma = 1 for 1 < i < n + m; equivalently, Xu = Yr^r+m = 1 for 1 < i < m and 
1 < r < n. 

(H2) Xij = unless j -i e ([0, n - s) n 4Z) U ([n - s, n) n 2Z) U {n}. 

(H3) Yij = if j < i, and Yij is even if j ^ m + i. 

(H4) For k E [0,m — s), we have 

Jo (mod 4) ifk = (mod 4) 
1 (mod 8) otherwise. 

(H5) For k E [m — s,m + n — 2s) and k ^ m, we have 

{0 (mod 2) %fk = 2 (mod 4), 
(mod 4) if k = (mod 4), or if k is odd and i + k > m, 
(mod 8) otherwise. 

Thendet{M) = 1 mod 8. 

Proof. Write X = {A B), where A is m x m. By hypothesis, A is an upper-triangular 
matrix with I's on the diagonal, and so the rows of X may be used as pivots to clear the 
first m columns of Y. We will show below that the new Y still satisfies the hypotheses, but 
with the first m columns of Y equal to 0. Let D denote the rightmost n columns of Y; then 
det(M) = det(D). We will show below that det(D) = 1. 



It remains to prove the two claims: (1) when a row of X is used as a pivot to clear the 
first m columns, the new matrix still satisfies the hypotheses; and (2) det{D) = 1. 

We begin with the second claim. We show that D has I's on the diagonal and satisfies the 
hypotheses of Lemma I^^Tl By (HI) and (H3), the diagonal entries Da are equal to 1, and the 
off-diagonal entries are even. We now show DijDji = (mod 8) ii i ^ j. By symmetry we 
can assume i < j. Since Dij and Dji are even, it suffices to show one of Dij, Dji is (mod 4). 
Assume 4 does not divide Dji and we will show that 4 divides Dij. Let t = j — i > 0. Then 
Dij = Yi^i^(^rn+t), Dji = y,j+(m-i)- Siuce 4 does not divide Dji, (H4) implies that m — t is not 
in [0, m — s). By (H3), m — t > 0. Thus, m — t > m — s, and so < t < s. Then, {m — t) 
is in [m — s,m). By (H5), m — t = 2 (mod 4). Then t is odd, so 2t = 2 (mod 4). Thus, 
m + t = {m — t) + 2t = (mod 4). Further, m + t lies in the interval {m, 171 + s], so by (H5), 
Dij = (mod 4). We conclude that DijDji = (mod 8). Thus, det(D) = f by Lemma 

Now we verify the first claim. Consider a nonzero entry in the leftmost m columns of Y, 
say e = Yri ^ 0, where i < m. To clear this entry, we subtract e times the i^'^ row of X from 
the r*'' row of Y. Let Y' denote the new matrix, thus Y^,^ = Yr's if r' 7^ r and 

Y' =Y - eX- e = Y 

We must check that if the hypotheses hold for X and Y then they also hold for X and Y'. 
The hypotheses will certainly hold for Y^^ if eXis = 0, so we may assume eXis 7^ 0. 

Let k = i — r, and note that k < i < m. We have e = Y^^r+k 7^ 0. By (H3), A; > 0. Since 
< k < m and k + r = i < m, (If4) and (If5) imply one of the following holds: 

< k < m, 4\k, 4|e or m — s<k<m, k = 2 mod 4, e is even. (6) 

Let k' = s — r. The equation Y^^ = Yrs — eXis can be rewritten as 

J- J. r-\-k' ^ r,r+k' (i-^i,i+k'—k) 6 lr,r+fc- 

Since Xig = Xi^i^js/_k, and we may assume this is non-zero, we have by (H2), 

k' - k e {[0,n - s) n AZ) U {[n - s,n) n 2Z) U {n}. (7) 

Now we check the hypotheses (HI), (H3), (H4), and (H5) for Y'. 

Verification of (HI): Is Y^^._^^ = 1? Equations (0) and ^ cannot both hold when 
rv ^ m, tnereiore i,^.,..\^, ^ if^^-yYi ~~ -L* 

Verification of (H3): First we show F'- = if j < r. Since A; = z — r G [0, m), we see 
j < r < i, and so Xij = 0. Then Y^j = Yj.j = 0. Next, we show Y^j is even when j ^ m + r. 
This is because Y^j = Y^j — eXij, e is even, and Yrj is even. 

Verification of (H^): Let Q < k' < m — s. Then k' — k < m — s, so k' = k (mod 4) 
and k < k' < m — s hj ^. By ©, 4|A; and 4|e. Since k' = k (mod 4), 4\k'. Then 
Yr^r+k' — Yr,r+k' = (mod 4), as required. 

Verification of (H5): Let m — s<k'<m + n — 2s and k' ^ m. We will show (H5) holds 
for I7r+A:'- Since ^^V+fc' — Yr,r+k' — eXj^j+fc'_fc and (H5) holds for F^.r+fc', it suffices to show 

'O (mod 2) if A;' = 2 (mod 4), 
eXj_j+fc/_fc = ■{ (mod 4) if A;' = (mod 4), or if k' is odd and r + k' > m, (8) 
(mod 8) if k' is odd and r + k' < m. 



This is certainly true when k' = 2 (mod 4) since e is always even, so assume k' ^ 2 (mod 4). 
We claim 4|fc. If not, then by (jHI), A; = 2 (mod 4) and k > m — s, so k' — k < {m + n — 2s) — 
{m — s) < n — s. By l^^, k' — k E [0,n — s) n 4Z. So k' = k = 2 (mod 4), contradicting 
our assumption that k' ^ 2 (mod 4). This proves the claim that 4\k. By dH)), 4|e. Thus, 
(jHl) holds except possibly when k' is odd and r + k' < m. By ^ and ((7j), /c' odd implies 
k' — k = n, in which case r + k' > m. This proves (H5). I 
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